Premises gateway apparatus and methods for use in a content-based network

ABSTRACT

Apparatus and methods for premises gateway functions that integrate or unify functions typically distributed across multiple devices within a content-based network. In one embodiment, the out-of-band (OOB) signaling functionality normally provided in each of a set-top-box (STB) and digital video recorder (DVR) are unified into a common OOB (e.g., DOCSIS) capable premises gateway device, thereby obviating OOB tuners and related components from each device. In another variant, the premises gateway is adapted for all-IP operation, such as for use with IP-based computers and IP set-top boxes, etc. Fully unified variants are also disclosed, wherein the DVR and/or STB functions are physically integrated within the premises gateway.

COPYRIGHT

A portion of the disclosure of this patent document contains materialthat is subject to copyright protection. The copyright owner has noobjection to the facsimile reproduction by anyone of the patent documentor the patent disclosure, as it appears in the Patent and TrademarkOffice patent files or records, but otherwise reserves all copyrightrights whatsoever.

BACKGROUND OF THE INVENTION

1. Field of Invention

The present invention relates generally to the field of content and/ordata delivery over a network. More particularly, the present inventionis related to apparatus and methods for distributing programmingcontent, media, data and other information services via apparatusdisposed on a user premises (e.g., residence, enterprise, etc.).

2. Description of Related Technology

Recent advances in digital information processing have made a range ofservices and functions available for delivery to consumers at theirpremises for very reasonable prices or subscription fees. These servicesand functions include digital broadcast programming (movies, etc.),digital video-on-demand (VOD), personal video recorder (PVR), InternetProtocol television (IPTV), digital media playback and recording, aswell high speed internet access and IP-based telephony (e.g., VoIP).Other services available to network users include access to andrecording of digital music (e.g., MP3 files), as well local areanetworking (including wire-line and wireless local area networks) fordistributing these services throughout the user's premises, and beyond.

Currently, in the context of content-based networks, many of theseservices are provided and delivered to the user via a variety ofdifferent equipment environments including, inter alia, cable modems andcomputers, cable set-top boxes, and digital video recorders (DVRs). Thisunfortunately presents the user with a somewhat heterogeneous mixture ofsubstantially separate hardware and software environments.

Some improvements in digital service integration have been made overtime. For example, cable system subscribers (such as those of theAssignee hereof) can now access VOD, PVR, PPV and broadcast servicessimultaneously, as well a Internet access via cable modem, and evendigital telephony (e.g., VoIP).

A variety of residential or home “gateway” devices for use with cabletelevision networks and that integrate various functions are disclosedin the prior art. For example, U.S. Pat. No. 5,557,319 to Gurusami, etal. issued Sep. 17, 1996 entitled “Subscriber return system for CATVfull service networks” discloses a subscriber premise local bus (SPLB)is connected to a cable drop from a wide-band 2-way network through agateway device providing frequency conversion and blocking of certainfrequencies used in the subscriber premises local bus (SPLB). Servicechannels to the consumer are provided in a first band such as 54 to 750MHZ, carried unchanged over the SPLB. Return signals from the subscriberare generated at subscriber devices, such as TV, computers, etc. at, orare up-converted to, signals in a higher frequency band, such as 900 to950 Mhz, for transmission on the SPLB to the gateway device where theyare down-converted to frequencies below 54 Mhz for transmission over thenetwork. A band-pass or other filter may block at least some of thelower frequencies from carrying over from the SPLB to the cable drop or2-way network.

U.S. Pat. No. 6,317,884 to Eames, et al. issued Nov. 13, 2001 entitled“Video, data and telephony gateway” discloses a residential gateway fordistributing video, data and telephony services. The gateway has a MPEGbus connected from a network interface module to a first and a secondvideo processors. A microprocessor controls the first and second videoprocessors by sending control signals across a control bus.

U.S. Pat. No. 6,396,531 to Gerszberg, et al. issued May 28, 2002entitled “Set top integrated visionphone user interface having multiplemenu hierarchies” discloses a system architecture for bypassing a localexchange carrier that comprises an intelligent terminal, a residentialgateway coupled to the terminal, a cable facility management platformterminating a twisted pair or coaxial cable facility and a networkservice platform. The platform serves both a cable headend and atelephone DSL network to enable a single service provider to providedifferent information content services independent of how a useractually receives the services. The integrated residence gateway iscoupled to either or both of the coaxial cable or twisted pair anddistributes the bandwidth facilities available over either servicevehicle to customer devices including the set top box.

U.S. Pat. No. 6,546,016 to Gerszberg, et al. issued Apr. 8, 2003entitled “Coaxial cable/twisted pair cable telecommunications networkarchitecture” discloses a system architecture for bypassing a localexchange carrier comprises an intelligent terminal, a residentialgateway coupled to the terminal, a cable facility management platformterminating a twisted pair or coaxial cable facility and a networkservice platform. The twisted pair and/or coaxial cable fed, integratedresidence gateway controlled intelligent terminal or set-top deviceprovides a plurality of enhanced services. One necessary service islifeline service which may be provided over the coaxial cable via acable modem of the integrated residence gateway, over the twisted pairfacility or via wireless means. The integrated residence gateway iscoupled to either or both of the coaxial cable or twisted pair anddistributes the bandwidth facilities available over either servicevehicle to customer devices including the set top box.

U.S. Pat. No. 6,711,742 to Kishi, et al. issued Mar. 23, 2004 entitled“Cable modem system using CATV transmission path” discloses a cablemodem system prevents an up-link noise from entering a cable so as toefficiently use the bandwidth of a CATV transmission path. The cablemodem system performs data communication using the transmission path ofa cable television system which includes a cable television stationapparatus and a plurality of subscriber units connected to each other bythe transmission path. A gateway apparatus receives an original datasignal supplied by one of the subscriber units via a telephone network.The gateway apparatus converts the original data signal into a converteddata signal so that the converted data signal complies with a protocolcorresponding to a destination address included in the original datasignal. The gateway apparatus sends the converted data signal to thecable television station apparatus via the transmission path. A line endterminal unit is provided in the cable television station apparatus soas to receive the converted data signal sent from the gateway apparatus.The line end terminal unit restores the converted data signal to theoriginal data signal.

U.S. Pat. No. 6,931,018 to Fisher issued Aug. 16, 2005 entitled “Localnetwork router and method of routing IP data packets” discloses a localnetwork router that learns to route IP traffic among customer premisesequipment on a local network rather than permitting the IP traffic to berouted through a broadband cable network and selected internet serviceprovider (ISP) to the internet. The local network router dynamicallygenerates a routing table from address resolution protocol (ARP) packetsexchanged between the CPE and the external network. For each IP datapacket received from a CPE that is destined for another local CPE, thelocal network router replaces a default gateway with the destinationCPE. Accordingly, network resources for routing traffic aresignificantly reduced.

U.S. Pat. No. 6,978,474 to Sheppard, et al. issued Dec. 20, 2005entitled “Media interface device” discloses a Residential Gateway (RG)for distributing video, data and telephone services to multiple deviceswithin a residence. The RG receives signals from a telecommunicationsnetwork, converts the signals to formats compatible with the multipledevices, and transmits the appropriate signals to the appropriatedevices. Wireless remote control devices (RCs) associated with remotelylocated televisions (TVs) transmit channel select commands to the RG aswireless signals. The wireless signals are received by Remote AntennaePackages (RAPs) coupled to the remotely located TVs. The RAPs transmitthe wireless signals over coaxial cable to a Media Interface Device(MID) coupled to the RG. The MID extracts the channel select commandsand forwards them to the RG. The MID is also capable of combining andsplitting TV signals, and adjusting the impedance of network signals sothat they can be transmitted over the coaxial cable.

United States Patent Application Publication No. 20010030950 to Chen, etal. published Oct. 18, 2001 entitled “Broadband communications accessdevice” discloses an integrated phone-based home gateway system. Theintegrated phone-based home gateway system includes a broadbandcommunication device, such as digital subscriber line (“DSL”) device, ananalog modem, and a wireless interface, integrated into a screen-phonefor providing broadband communication service to home users. Multiplehome users are able to access the Internet and the content services forconducting e-commerce, receiving content news, entertaining on-demand,making audio or video communications, and telecommuting or working athome. This screen-phone based, modular, plug-n-play home gatewayinterface allows in-home as well as to-home networking, providesautomatic data and broadband initialization, configuration and serviceprovisioning, routing and bridging functionality and allows resourcesharing among home devices via the existing phone wire, wireless,coaxial or optical cable connections.

United States Patent Application Publication No. 20050055729 to Atad, etal. published Mar. 10, 2005 entitled “Video broadcasting with returnchannel” discloses a TV broadcasting system that comprises: an outwardbroadcast link to reach each of a plurality of user receiverinstallations via satellite or via a terrestrial channel, and a returnlink from each of said plurality of users, said return channel being aterrestrial channel via a wide area network, typically a WAN, of whichWAN said user receiver installations form a node. The WAN may alsosupport an uplink. A satellite or terrestrial receiver installation ismodified with an extra terrestrial antenna for the WAN and a splittercombiner allows the already installed cable link to the TV receiver tobe retained. A residential gateway allows a household LAN andcommunication enabled devices to be supported via the TV/WANinfrastructure.

United States Patent Application Publication No. 20050165899 to Mazzolapublished Jul. 28, 2005 entitled “Provisioning quality of service inhome networks using a proxy interface” discloses a home gateway andinterface system and method for providing quality of service to a homeLAN device on a home network that is not QoS capable. The gatewaycomprises a modem (e.g., cable, DSL modem) and a portal service proxyinterface. The modem is connected between the home network and a WANcable network, and is operable to bridge traffic between the home LAN ofthe home network and the WAN cable network. The portal service interfaceis connected to the modem and is utilized as a proxy for QoSreservations and data communications between the home LAN devices on thehome network. The portal interface acts on behalf of a client to makerequests of the non-QoS capable home LAN devices and communicate theseQoS needs to the QoS capable devices.

United States Patent Application Publication No. 20060041915 toDimitrova, et al. published Feb. 23, 2006 entitled “Residential gatewaysystem having a handheld controller with a display for displaying videosignals” discloses a residential gateway system that includes aresidential gateway to which a plurality of video and audio signalrecording and reproducing devices, video and audio sources, includingsatellite, cable, Internet, are connected, and including a handheldcontroller for communicating with and controlling the residentialgateway. The handheld controller has a display screen for displayingicons for controlling the residential gateway, and for displaying videosignals from the residential gateway. Since the display capabilities ofthe display screen of the handheld controller are limited, theresidential gateway includes a transcoder for transcoding video signalsfor transmission to the handheld controller such that the transmittedvideo signals may be displayed in their entirety on the display screenof the handheld controller. By transcoding the video signals prior totransmission, valuable bandwidth of the network channel connecting thehandheld controller to the residential gateway is save for thetransmission of other information and signals.

United States Patent Application Publication No. 20060136968 to Han, etal. published Jun. 22, 2006 entitled “Apparatus for distributingsame/different digital broadcasting streams in heterogeneous homenetwork and method thereof” discloses an apparatus for distributingsame/different digital broadcasting streams in a heterogeneous homenetwork and a method thereof. The apparatus includes a home gateway, anda home server, connected to the home gateway through Ethernet and alsoconnected to a PC, a second IP STB, a 1394 STB, an HAS (Home AutoSystem) and an HDTV receiver, for outputting a ground-wave broadcast, asatellite broadcast and a cable broadcast to their HDTV receivers,respectively, through the second IP STB and the 1394 STB if theground-wave broadcast, the satellite broadcast and the cable broadcastare received through coaxial cables, interworking with the HAS in orderto control home appliances, and directly outputting the broadcast to theHDTV receiver through a built-in STB function. According to theapparatus, a user having a plurality of HDTV receivers at home cansimultaneously view a plurality of HDTV broadcasts irrespective of thebroadcasting systems when a plurality of heterogeneous home networksmatch through a home network matching device.

However, despite the foregoing variety of prior art “gateway”configurations, the various supported functions are still substantiallydisparate in terms of their hardware and software environments. This isparticularly true in extant cable television installations, wherein theuser must have a separate cable modem, set-top box, VoIP telephony unit,PC, etc. to perform these differing functions. “Cross-over” between theenvironments (e.g., moving content or data from one environment to theother) is often quite limited as well due to either hardware/softwareincompatibilities, conditional access or digital rights management (DRM)constraints, and the like.

Moreover, many of the aforementioned device architectures typicallyleverage a number of costly and in some cases duplicative technologies.This adds cost not only for the consumer (e.g., those buying retaildevices), but also to the network operator such as a cable MSO, sincethey must expend more in outfitting a subscriber with given capabilitiesthan they would otherwise, were less costly and less duplicativetechnologies used. One salient example of this is the use of multipletuners and supporting RF front-end components (e.g.,modulators/demodulators, DACs/ADCs, etc.) in each separate device; e.g.,one or more video tuners, and an OOB tuner, within a given STB or DVR.The OOB tuner is to communicate out-of-band with the headend or anothernetwork entity during operation, while the video or in-band tuners allowfor reception and decoding of programming. These multiple tuners andsupporting RF and processing components add significant cost to adevice.

Hence, there is a need to reduce the capital cost to both networkoperators and customers related to deployment of customer premisesequipment, while at the same time preserving current services andfeatures, and enabling the ready adoption new capabilities in theconsumer's premises. Such reduction would ideally be provided throughapparatus and methods that would simplify premises equipment and networkinfrastructure through e.g., unification of one or more functionspresent within the various equipment environments.

SUMMARY OF THE INVENTION

The present invention satisfies the foregoing needs by providing, interalia, improved apparatus and methods for premises content signaling andcontent delivery.

In accordance with a first aspect of the invention, a gateway device isdisclosed. In one embodiment, the gateway device is for use in acontent-based network, and comprises: first apparatus adapted to receivefirst signals transmitted over a first frequency band via the network;second apparatus adapted to receive second signals transmitted over asecond frequency band via the network, and transmit third signals overthe second band also via the network; and an interface to anotherpremises device. The other premises device utilizes the second apparatusas a communications proxy for transmitting the third signals via thesecond band that would otherwise have to be transmitted via a separateinterface to the network. For example, the other premises devicecomprises a set-top box having only an in-band tuner, and not capable ofcommunicating over the second frequency band directly.

In one variant, the gateway device further comprises a convergedpremises device having a cable LAN interface and an Ethernet LANinterface.

In another variant, the gateway device further comprises a digital videorecorder, and the another device comprises a set-top box (STB).

In still another variant, the first signals comprise in-band downstreamsignals received over a coaxial cable, and the second signals comprisedownstream data signals also received over the coaxial cable, and thethird signals comprise out-of-band upstream signals.

In another embodiment, the gateway device comprises: first apparatusadapted to receive first signals transmitted over a first frequency bandvia the network, and transmit second signals over the first band alsovia the network; a first data interface to a first premises device; anda second data interface to a second premises device. The first frequencyband comprises a band used for either out-of-band (OOB) signaling orcable modem operation; and the first and second premises devices eachutilize the first apparatus as a communications proxy for transmittingthe second signals.

In one variant, the content-based network comprises a cable network, andthe first premises device comprises a set-top box (STB), and the seconddevice comprises a digital video recorder (DVR). The STB and the DVRcomprise only in-band tuners.

In another variant, the first and second premises devices eachcommunicate with the first apparatus using an internet protocol (IP).The first apparatus comprises a DOCSIS compliant cable modem with mediaaccess controller (MAC).

In yet another variant, the first premises device comprises a personalcomputer, and the first interface comprises an Ethernet card.

In still another variant, at least one of the first and secondinterfaces comprises a coaxial cable interface to a MoCA-compliant localarea network (LAN).

In yet a further variant, the gateway device comprises network addresstranslation (NAT) capability, and/or a Dynamic Host ConfigurationProtocol (DHCP) server.

In another variant, the gateway device comprises a transcoder apparatusadapted to encode a signal encoded according to a first format into asecond format different from the first.

In yet another variant, the first and second premises devices compriseIP-enabled devices, and the gateway device is adapted to communicate IPprotocol data with the first and second premises devices via the firstand second interfaces.

In still a further variant, the gateway device comprises a transcryptionapparatus adapted to transcrypt data from a first security environmentto a second security environment. The first security environmentcomprises e.g., a conditional access environment, and the secondsecurity environment comprises a digital rights management (DRM)environment.

In a second aspect of the invention, a set-top box apparatus isdisclosed. In one embodiment, the apparatus comprises: first apparatusadapted to receive, demodulate, and decode encoded video signals sentvia a cable television network; and second apparatus configured tocommunicate data or signals with a premises device via a communicationchannel, the premises device being adapted to provide out-of-band (OOB)communication with one or more other entities on the cable televisionnetwork based at least in part on the data or signals. The premisesdevice acts as an OOB communication proxy for the set-top box apparatus.

In one variant, the first apparatus comprises an in-band tuner, and thesecond apparatus comprises an OOB signaling interface.

In another variant, the first apparatus comprises an in-band tuner, andthe second apparatus comprises an IP-based media access controller(MAC).

In a third aspect of the invention, a digital video recorder apparatusis disclosed. In one embodiment, the apparatus comprises: firstapparatus adapted to receive, demodulate, and decode encoded videosignals sent via a cable television network; second apparatus adapted torecord the decoded video signals for subsequent playback ortransmission; and third apparatus configured to communicate data orsignals with a premises device via a communication channel, the premisesdevice being adapted to provide out-of-band (OOB) communication with oneor more other entities on the cable television network based at least inpart on the data or signals. The premises device acts as an OOBcommunication proxy for the digital video recorder apparatus.

In one variant, the premises device comprises an out-of-band tuner, andthe second apparatus comprises a hard-disk drive, and the apparatusenforces at least one of a trusted domain (TD) or authorized servicedomain (ASD) content protection policy.

In another variant, the premises device and the digital video recordercomprise a unified form factor.

In yet another variant, the premises device further comprises aninterface to a set-top box having only an in-band tuner, the premisesdevice acting as an OOB communication proxy for the set-top box.

In a second embodiment, the DVR comprises an OOB tuner and one or morein-band (e.g., video) tuners for e.g., supporting DVR functions, andacts as an OOB proxy for an associated STB, which only includes anin-band receiver.

In a fourth aspect of the invention, premises gateway apparatus for usewith a content-based network is disclosed. In one embodiment, theapparatus comprises: a first tuner adapted to receive first signals in afirst frequency band from the network, and obtain first data therefrom;a second tuner adapted to receive second signals in a second frequencyband from the network, and obtain second data therefrom; a firstinterface adapted to format the first data according to a protocol, anddistribute the formatted data to at least one first premises device indata communication with the gateway apparatus; and a second interfaceadapted to at least distribute the second data to at least one secondpremises device in data communication with the gateway apparatus.

In one variant, the network comprises a cable television network, thefirst signals are delivered over the network associated with in-bandQAMs, and the second signals are delivered over the network associatedwith out-of-band QAMs. The first interface is adapted to format datapackets received via the in-band QAMs according to an internet protocol(IP).

In yet another variant, the second interface comprises a TCP transportlayer protocol and an IP network layer protocol, and the at least onesecond premises device comprises a personal computer.

In still another variant, the at least one first premises devicecomprises an IP-enabled digital set-top box, and the second tunerapparatus is further adapted to transmit signals in the second frequencyband over the network to a distant entity.

In a fifth aspect of the invention, a method of delivering video anddata services over a network is disclosed. In one embodiment, thenetwork comprises a cable network, and the method comprises: receivingvideo and data signals at a gateway device from a common coaxial cable;using at least a first tuner to extract the video signals; using atleast a second tuner to extract the data signals; processing the videosignals according to a network layer protocol to produce a plurality ofprotocol packets; and delivering the protocol packets to apacket-enabled client device for viewing, the packet-enabled devicebeing in data communication with the gateway device.

In one variant, the method further comprises delivering the data signalsto a computerized device in data communication with the gateway device,and the network layer protocol comprises the Internet Protocol (IP).

In another variant, the video signals comprise MPEG-over-IP-over MPEGencoded signals.

In a sixth aspect of the invention, a method of delivering videoservices over a network is disclosed. In one embodiment, the methodcomprises: receiving video signals at a first device using a firstnetwork interface apparatus; receiving data signals at a second deviceusing a second network interface apparatus, the first and second devicesbeing in data communication with one another; and sending upstreamsignals destined for a network entity from the first device via thesecond network interface apparatus of the second device.

In one variant, the first device comprises a set-top box or digitalvideo recorder (DVR), and the second device comprises a premises gatewaydevice.

In another variant, the first device comprises a set-top box or digitalvideo recorder (DVR), the second network interface apparatus comprises acable modem, and the method further comprises receiving, via the secondnetwork interface apparatus of the second device, downstream signalsfrom a network entity, the signals destined for the first device.

In yet another variant, the first device and the second device comprisea trusted security domain, and the method further comprises enforcing atleast one security policy with respect to at least the video signalswithin the domain.

In still another variant, at least one of the first device and thesecond device comprise a secure microprocessor, and the method furthercomprises downloading at least a common image and a personalizedsoftware image to the secure microprocessor pursuant to establishing aconditional access privilege.

In a seventh aspect of the invention, a method of doing business isdisclosed. In one embodiment, the method comprises: providing a premisesgateway device having at least an out-of-band (OOB) network interface toa subscriber; providing a video rendering or recording device to thesubscriber, the rendering or recording device having no out-of-bandnetwork interface; and causing the subscriber to use the at least OOBinterface of the gateway device for OOB communications between therendering or recording device and the network.

BRIEF DESCRIPTION OF THE DRAWINGS

FIG. 1 is a functional block diagram illustrating an exemplary HFC cablenetwork configuration useful with the present invention.

FIG. 1 a is a functional block diagram illustrating one exemplary HFCcable network headend configuration useful with the present invention.

FIG. 1 b is a functional block diagram illustrating one exemplary localservice node configuration useful with the present invention.

FIG. 1 c is a functional block diagram illustrating one exemplarybroadcast switched architecture (BSA) network useful with the presentinvention.

FIG. 2 a is a block diagram illustrating a typical prior art premisesnetwork topology used with a cable television network.

FIG. 2 b is a block diagram illustrating a first embodiment of thepremises network topology according to the present invention.

FIG. 3 is a block diagram illustrating a second embodiment of a premisesnetwork topology according to the present invention.

FIG. 4 is a block diagram of another exemplary network premises topologyaccording to the present invention, utilizing a converged premisesdevice (CD).

FIG. 5 is a block diagram of yet another network topology according tothe present invention, utilizing a premises services gateway (PSG)comprising the functionality of a digital video recorder.

FIG. 6 is a block diagram of an exemplary premises services gateway(PSG) configuration adapted for use in an “all-IP” cable network.

FIG. 7 is a logical flow diagram of a first embodiment of the method ofoperating a premises network according to the present invention.

FIGS. 8 and 8 a are logical flow diagrams of a second embodiment of themethod of operating a premises network according to the presentinvention, and a variant thereof, respectively.

FIG. 9 is a flow diagram of a method used in accordance with a thirdembodiment of the present invention.

FIG. 10 is a flow diagram of a method used in accordance with a fourthembodiment of the present invention.

FIG. 11 is a block diagram of a first embodiment of a premises servicesgateway device according to the invention.

FIG. 12 is a block diagram of a second embodiment of a premises servicesgateway device according to the invention, comprising integrated digitalvideo recording (DVR) and high-speed data functionality.

FIG. 13 is a block diagram of a third embodiment of a premises servicesgateway device according to the invention, comprising a unified orwideband tuner apparatus, and integrated video and high-speed datacapability.

FIG. 14 is a block diagram of a fourth embodiment of a premises servicesgateway device according to the invention, comprising integrated digitalvideo recording (DVR), digital set-top box (DSTB), and high-speed datafunctionality.

FIG. 15 is a block diagram of a fifth embodiment of a premises servicesgateway device according to the invention, with integrated DVR andfurther adapted for IP-based processing and distribution.

DETAILED DESCRIPTION OF THE INVENTION

Reference is now made to the drawings wherein like numerals refer tolike parts throughout.

As used herein, the term “application” refers generally to a unit ofexecutable software that implements a certain functionality or theme.The themes of applications vary broadly across any number of disciplinesand functions (such as on-demand content management, e-commercetransactions, brokerage transactions, home entertainment, calculatoretc.), and one application may have more than one theme. The unit ofexecutable software generally runs in a predetermined environment; forexample, the unit could comprise a downloadable Java Xlet™ that runswithin the JavaTV™ environment.

As used herein, the terms “client device” and “end user device” include,but are not limited to, set-top boxes (e.g., DSTBs), personal computers(PCs), and minicomputers, whether desktop, laptop, or otherwise, andmobile devices such as handheld computers, PDAs, personal media devices(PMDs), such as for example an iPod™, or Motorola ROKR, and smartphones.

As used herein, the term “codec” refers to an video, audio, or otherdata coding and/or decoding algorithm, process or apparatus including,without limitation, those of the MPEG (e.g., MPEG-1, MPEG-2, MPEG-4,etc.), Real (RealVideo, etc.), AC-3 (audio), DiVX, XViD/ViDX, WindowsMedia Video (e.g., WMV 7, 8, or 9), ATI Video codec, or VC-1 (SMPTEstandard 421M) families.

As used herein, the term “computer program” or “software” is meant toinclude any sequence or human or machine cognizable steps which performa function. Such program may be rendered in virtually any programminglanguage or environment including, for example, C/C++, Fortran, COBOL,PASCAL, assembly language, markup languages (e.g., HTML, SGML, XML,VoXML), and the like, as well as object-oriented environments such asthe Common Object Request Broker Architecture (CORBA), Java™ (includingJ2ME, Java Beans, etc.), Binary Runtime Environment (e.g., BREW), andthe like.

As used herein, the term “conditional access” refers to any accesscontrol scheme, whether implemented in hardware, software, or firmware(or combinations thereof), including without limitation members of the“PowerKey™” family, NDS (including VideoGuard, mVideoGuard, etc.), DVB,and Motorola/General Instrument DigiCipher® family (DigiCipher II,etc.). These can be implemented using, for example, CA-specifichardware/software elements embedded in the device, the so-called“CableCARD™” plug-in security module access technology, a downloadableCA system (DCAS), or otherwise.

The terms “Customer Premises Equipment (CPE)” and “host device” refer toany type of electronic equipment located within a customer's or user'spremises and connected to a network. The term “host device” refersgenerally to a terminal device that has access to digital televisioncontent via a satellite, cable, or terrestrial network. The host devicefunctionality may be integrated into a digital television (DTV) set. Theterm “customer premises equipment” (CPE) includes such electronicequipment such as set-top boxes (e.g., DSTBs), televisions, cable modems(CMs), embedded multimedia terminal adapters (eMTAs), whetherstand-alone or integrated with other devices, Digital Video Recorders(DVR), gateway storage devices (Furnace), and ITV Personal Computers.

As used herein, the term “display” means any type of device adapted todisplay information, including without limitation CRTs, LCDs, TFTs,plasma displays, LEDs, incandescent and fluorescent devices. Displaydevices may also include less dynamic devices such as, for example,printers, e-ink devices, and the like.

As used herein, the term “DVI” (digital video interface) refersgenerally to any type of interface (e.g., hardware and/or software)adapted to provide interface and/or conversion between different formatsor domains, including without limitation interfaces compliant with theDigital Display Working Group (DDWG) DVI specification (e.g., DVI-A,DVI-D, and DVI-I). For example, using a DVI connector and port, adigital signal sent to an analog monitor is converted into an analogsignal; if the monitor is digital, such as a flat panel display, noconversion is necessary. A DVI output is an option in OpenCablecompliant hardware that provides a high-definition TV (HDTV) outputwhich includes copy protection.

As used herein, the term “DVR” (digital video recorder) refers generallyto any type or recording mechanism and/or software environment wherebycontent sent over a network can be recorded and selectively recalled.Such DVR may be dedicated in nature, or part of a non-dedicated ormulti-function system.

As used herein, the term “DOCSIS” refers to any of the existing orplanned variants of the Data Over Cable Services InterfaceSpecification, including for example DOCSIS versions 1.0, 1.1, 2.0 and3.0. DOCSIS (version 1.0) is a standard and protocol for internet accessusing a “digital” cable network. DOCSIS 1.1 is interoperable with DOCSIS1.0, and has data rate and latency guarantees (VoIP), as well asimproved security compared to DOCSIS 1.0. DOCSIS 2.0 is interoperablewith 1.0 and 1.1, yet provides a wider upstream band (6.4 MHz), as wellas new modulation formats including TDMA and CDMA. It also providessymmetric services (30 Mbps upstream).

As used herein, the term “headend” refers generally to a networkedsystem controlled by an operator (e.g., an MSO) that distributesprogramming to MSO clientele using client devices. Such programming mayinclude literally any information source/receiver including, inter alia,free-to-air TV channels, pay TV channels, interactive TV, and theInternet. DSTBs may literally take on any configuration, and can beretail devices meaning that consumers may or may not obtain their DSTBsfrom the MSO exclusively. Accordingly, it is anticipated that MSOnetworks may have client devices from multiple vendors, and these clientdevices will have widely varying hardware capabilities. Multipleregional headends may be in the same or different cities.

As used herein, the term “integrated circuit (IC)” refers to any type ofdevice having any level of integration (including without limitationULSI, VLSI, and LSI) and irrespective of process or base materials(including, without limitation Si, SiGe, CMOS and GaAs). ICs mayinclude, for example, memory devices (e.g., DRAM, SRAM, DDRAM,EEPROM/Flash, ROM), digital processors, SoC devices, FPGAs, ASICs, ADCs,DACs, transceivers, memory controllers, and other devices, as well asany combinations thereof.

As used herein, the terms “Internet” and “internet” are usedinterchangeably to refer to inter-networks including, withoutlimitation, the Internet.

As used herein, the term “memory” includes any type of integratedcircuit or other storage device adapted for storing digital dataincluding, without limitation, ROM. PROM, EEPROM, DRAM, SDRAM, DDR/2SDRAM, EDO/FPMS, RLDRAM, SRAM, “flash” memory (e.g., NAND/NOR), andPSRAM.

As used herein, the terms “microprocessor” and “digital processor” aremeant generally to include all types of digital processing devicesincluding, without limitation, digital signal processors (DSPs), reducedinstruction set computers (RISC), general-purpose (CISC) processors,microprocessors, gate arrays (e.g., FPGAs), PLDs, reconfigurable computefabrics (RCFs), array processors, secure microprocessors, andapplication-specific integrated circuits (ASICs). Such digitalprocessors may be contained on a single unitary IC die, or distributedacross multiple components.

As used herein, the terms “MSO” or “multiple systems operator” refer toa cable, satellite, or terrestrial network provider havinginfrastructure required to deliver services including programming anddata over those mediums.

As used herein, the terms “network” and “bearer network” refer generallyto any type of telecommunications or data network including, withoutlimitation, hybrid fiber coax (HFC) networks, satellite networks, telconetworks, and data networks (including MANs, WANs, LANs, WLANs,internets, and intranets). Such networks or portions thereof may utilizeany one or more different topologies (e.g., ring, bus, star, loop,etc.), transmission media (e.g., wired/RF cable, RF wireless, millimeterwave, optical, etc.) and/or communications or networking protocols(e.g., SONET, DOCSIS, IEEE Std. 802.3, ATM, X.25, Frame Relay, 3GPP,3GPP2, WAP, SIP, UDP, FTP, RTP/RTCP, H.323, etc.).

As used herein, the terms “network agent” and “network entity” refers toany network entity (whether software, firmware, and/or hardware based)adapted to perform one or more specific purposes. For example, a networkagent or entity may comprise a computer program running in serverbelonging to a network operator, which is in communication with one ormore processes on a CPE or other device.

As used herein, the term “node” refers without limitation to anylocation, functional entity, or component within a network.

As used herein, the term “QAM” refers to modulation schemes used forsending signals over cable networks. Such modulation scheme might useany constellation level (e.g. QPSK, 16-QAM, 64-QAM, 256-QAM, etc.)depending on details of a cable network. A QAM may also refer to aphysical channel modulated according to the schemes.

As used herein, the term “network interface” refers to any signal, data,or software interface with a component, network or process including,without limitation, those of the Firewire (e.g., FW400, FW800, etc.),USB (e.g., USB2), Ethernet (e.g., 10/100, 10/100/1000 (GigabitEthernet), 10-Gig-E, etc.), MoCA, Serial ATA (e.g., SATA, e-SATA,SATAII), Ultra-ATA/DMA, Coaxsys (e.g., TVnet™), radio frequency tuner(e.g., in-band or OOB, cable modem, etc.), WiFi (802.11a,b,g,n), WiMAX(802.16), PAN (802.15), or IrDA families.

As used herein, the term “server” refers to any computerized component,system or entity regardless of form which is adapted to provide data,files, applications, content, or other services to one or more otherdevices or entities on a computer network.

As used herein, the terms “source” and “sink” refer generally andwithout limitation to sources of content (e.g., data, video, audio,multimedia, files, games, cryptographic elements, etc.) and users orrequesters of content, respectively.

As used herein, the term “storage device” refers to without limitationcomputer hard drives, DVR device, memory, RAID devices or arrays,optical media (e.g., CD-ROMs, Laserdiscs, Blu-Ray, etc.), or any otherdevices or media capable of storing content or other information.

As used herein, the term “user interface” refers to, without limitation,any visual, graphical, tactile, audible, sensory, or other means ofproviding information to and/or receiving information from a user orother entity.

As used herein, the term “WiFi” refers to, without limitation, any ofthe variants of IEEE-Std. 802.11 or related standards including 802.11a/b/g/n.

As used herein, the term “wireless” means any wireless signal, data,communication, or other interface including without limitation WiFi,Bluetooth, 3G, HSDPA/HSUPA, TDMA, CDMA (e.g., IS-95A, WCDMA, etc.),FHSS, DSSS, GSM, PAN/802.15, WiMAX (802.16), 802.20, narrowband/FDMA,OFDM, PCS/DCS, analog cellular, CDPD, satellite systems, millimeter waveor microwave systems, acoustic, and infrared (i.e., IrDA).

Overview

The present invention provides, inter alia, methods and apparatusunifying at least portions of the functionality of a set-top box (STB)or similar customer premises device, or a digital video recorder (DVR),with those of another device such as a cable modem. In one exemplaryvariant, the out-of-band signaling and communication functions typicallynecessary on STBs and DVRs are obviated in favor of a premises servicesgateway (PSG) device, which acts as a unified proxy for all inbound(downstream) and outbound (upstream) communications with the network.This approach is particularly useful to help reduce a cable provider'scapital expenditures in manufacturing customer premises equipment (CPE),since the “proxied” DVR and STB no longer require an OOB tuner, andhence their cost can be reduced and simplicity, space efficiency, andeven reliability increased.

The present invention can also be advantageously utilized to consolidatein-band tuner resources as well, thereby further reducing capital costsassociated with subscriber premises installations.

In one variant, communication between the various entities (e.g., DVRand STB and PSG OOB proxy) is accomplished using IP-basedcommunications.

In another variant, client devices that support a cable RF tuner and anIP channel distributed over coaxial cable to the PSG are disclosed.These clients can only implement the IP channel, and therefore receiveall video or data information over the IP network only. This reduces thecost of the client devices by removing the tuners and the cable modemsfrom each device.

In other embodiments, one or both of the foregoing DVR and STB arefurther physically integrated within the PSG, thereby allowing for afully unified platform. This unified platform can use a common formfactor (i.e., one box), a common coaxial interface to the parentnetwork, common AC power supply, end even common operating system,storage devices, and middleware. Common control and user interfaceenvironments may also be utilized, such as where a single “universal”remote is provided to afford control of all STB, tuning and DVRfunctions.

The PSG is also configured to interface with any number of other deviceswhich may be present in the customer's premises, such as e.g.,MoCA-based LANs, Ethernet LANs, WiFi LANs, PANs, or even personal mediadevices (PMDs). The PSG can also act as a router, provide networkaddress translation (NAT) functions, and even act as a DHCP server if soconfigured.

In another aspect, the exemplary PSG embodiments disclosed hereinfurther facilitate the aim of easier movement of content within a“trusted domain” or authorized service domain (ASD) by inter aliaunifying multiple devices and functions within a single device.

Detailed Description of Exemplary Embodiments

Exemplary embodiments of the apparatus and methods of the presentinvention are now described in detail. While these exemplary embodimentsare described in the context of the aforementioned hybrid fiber coax(HFC) cable system architecture having an multiple systems operator(MSO), digital networking capability, and plurality of clientdevices/CPE, the general principles and advantages of the invention maybe extended to other types of networks and architectures, whetherbroadband, narrowband, wired or wireless, or otherwise, the followingtherefore being merely exemplary in nature.

It will also be appreciated that while described generally in thecontext of a consumer (i.e., home) end user domain or premises, thepresent invention may be readily adapted to other types of environments(e.g., commercial/enterprise, government/military, etc.) as well. Myriadother applications are possible.

It is further noted that while described primarily in the context of acable system with 6 MHz RF channels, the present invention is applicableto literally any network topology or paradigm, and anyfrequency/bandwidth, such as for example 8 MHz channels. Furthermore, asreferenced above, the invention is in no way limited to traditionalcable system frequencies (i.e., below 1 GHz), and in fact may be usedwith systems that operate above 1 GHz band in center frequency orbandwidth, to include without limitation so-called ultra-widebandsystems.

Also, while certain aspects are described primarily in the context ofthe well-known IP or Internet Protocol (described in, inter alia, RFC791 and 2460), it will be appreciated that the present invention mayutilize other types of protocols (and in fact bearer networks to includeother internets and intranets) to implement the described functionality.

It will further be appreciated that while the exemplary embodimentspresented herein are described in the context of services that mayinclude multicast and unicast data, the present invention is applicableto other types of services that include multicast transmission of datadelivered over a network having multiple physical channels or evenvirtual or logical channels.

Other features and advantages of the present invention will immediatelybe recognized by persons of ordinary skill in the art with reference tothe attached drawings and detailed description of exemplary embodimentsas given below.

Network

FIG. 1 illustrates a typical content-based network configuration withwhich the apparatus and methods of the present invention may be used.The various components of the network 100 include (i) one or more dataand application origination points 102; (ii) one or more content sources103, (iii) one or more application distribution servers 104; (iv) one ormore VOD servers 105, and (v) customer premises equipment (CPE) 106. Thedistribution server(s) 104, VOD servers 105 and CPE(s) 106 are connectedvia a bearer (e.g., HFC) network 101. A simple architecture comprisingone of each of the aforementioned components 102, 104, 105, 106 is shownin FIG. 1 for simplicity, although it will be recognized that comparablearchitectures with multiple origination points, distribution servers,VOD servers, and/or CPE devices (as well as different networktopologies) may be utilized consistent with the invention. For example,the headend architecture of FIG. 1 a (described in greater detail below)may be used.

The data/application origination point 102 comprises any medium thatallows data and/or applications (such as a VOD-based or “Watch TV”application) to be transferred to a distribution server 104. This caninclude for example a third party data source, application vendorwebsite, CD-ROM, external network interface, mass storage device (e.g.,RAID system), etc. Such transference may be automatic, initiated uponthe occurrence of one or more specified events (such as the receipt of arequest packet or ACK), performed manually, or accomplished in anynumber of other modes readily recognized by those of ordinary skill.

The application distribution server 104 comprises a computer systemwhere such applications can enter the network system. Distributionservers are well known in the networking arts, and accordingly notdescribed further herein.

The VOD server 105 comprises a computer system where on-demand contentcan be received from one or more of the aforementioned data sources 102and enter the network system. These servers may generate the contentlocally, or alternatively act as a gateway or intermediary from adistant source.

The CPE 106 includes any equipment in the “customers' premises” (orother locations, whether local or remote to the distribution server 104)that can be accessed by a distribution server 104.

Referring now to FIG. 1 a, one exemplary embodiment of a headendarchitecture useful with the present invention is described. As shown inFIG. 1 a, the headend architecture 150 comprises typical headendcomponents and services including billing module 152, subscribermanagement system (SMS) and CPE configuration management module 154,cable-modem termination system (CMTS) and OOB system 156, as well asLAN(s) 158, 160 placing the various components in data communicationwith one another. It will be appreciated that while a bar or bus LANtopology is illustrated, any number of other arrangements as previouslyreferenced (e.g., ring, star, etc.) may be used consistent with theinvention. It will also be appreciated that the headend configurationdepicted in FIG. 1 a is high-level, conceptual architecture and thateach MSO may have multiple headends deployed using custom architectures.

The architecture 150 of FIG. 1 a further includes amultiplexer/encrypter/modulator (MEM) 162 coupled to the HFC network 101adapted to “condition” content for transmission over the network. Thedistribution servers 104 are coupled to the LAN 160, which providesaccess to the MEM 162 and network 101 via one or more file servers 170.The VOD servers 105 are coupled to the LAN 160 as well, although otherarchitectures may be employed (such as for example where the VOD serversare associated with a core switching device such as an 802.3z GigabitEthernet device). As previously described, information is carried acrossmultiple channels. Thus, the headend must be adapted to acquire theinformation for the carried channels from various sources. Typically,the channels being delivered from the headend 150 to the CPE 106(“downstream”) are multiplexed together in the headend and sent toneighborhood hubs via a variety of interposed network components.

Content (e.g., audio, video, data, files, etc.) is provided in eachdownstream (in-band) channel associated with the relevant service group.To communicate with the headend or intermediary node (e.g., hub server),the CPE 106 may use the out-of-band (OOB) or DOCSIS channels andassociated protocols. The OCAP 1.0, 2.0, 3.0 (and subsequent)specification provides for exemplary networking protocols bothdownstream and upstream, although the invention is in no way limited tothese approaches.

It will also be recognized that the multiple servers (broadcast, VOD, orotherwise) can be used, and disposed at two or more different locationsif desired, such as being part of different server “farms”. Thesemultiple servers can be used to feed one service group, or alternativelydifferent service groups. In a simple architecture, a single server isused to feed one or more service groups. In another variant, multipleservers located at the same location are used to feed one or moreservice groups. In yet another variant, multiple servers disposed atdifferent location are used to feed one or more service groups.“Switched” Networks

FIG. 1 c illustrates an exemplary “switched” network architecture alsouseful with the premises gateway apparatus and features of the presentinvention. While a so-called “broadcast switched architecture” or BSAnetwork is illustrated in this exemplary embodiment, it will berecognized that the present invention is in no way limited to sucharchitectures.

Switching architectures allow improved efficiency of bandwidth use forordinary digital broadcast programs. Ideally, the subscriber will beunaware of any difference between programs delivered using a switchednetwork and ordinary streaming broadcast delivery.

FIG. 1 c shows the implementation details of one exemplary embodiment ofthis broadcast switched network architecture. Specifically, the headend150 contains switched broadcast control and media path functions 190,192; these element cooperating to control and feed, respectively,downstream or edge switching devices 194 at the hub site which are usedto selectively switch broadcast streams to various service groups. A BSAserver 196 is also disposed at the hub site, and implements functionsrelated to switching and bandwidth conservation (in conjunction with amanagement entity 198 disposed at the headend). An optical transportring 197 is utilized to distribute the dense wave-division multiplexed(DWDM) optical signals to each hub in an efficient fashion.

Co-owned and co-pending U.S. patent application Ser. No. 09/956,688filed Sep. 20, 2001 and entitled “TECHNIQUE FOR EFFECTIVELY PROVIDINGPROGRAM MATERIAL IN A CABLE TELEVISION SYSTEM”, incorporated herein byreference in its entirety, describes one exemplary broadcast switcheddigital architecture useful with the present invention, although it willbe recognized by those of ordinary skill that other approaches andarchitectures may be substituted.

In addition to “broadcast” content (e.g., video programming), thesystems of FIGS. 1 a and 1 c also deliver Internet data services usingthe Internet protocol (IP), although other protocols and transportmechanisms of the type well known in the digital communication art maybe substituted. One exemplary delivery paradigm comprises deliveringMPEG-based video content, with the video transported to user PCs (orIP-based STBs) over the aforementioned DOCSIS channels comprising MPEG(or other video codec such as H.264 or AVC) over IP over MPEG. That is,the higher layer MPEG- or other encoded content is encapsulated using anIP protocol, which then utilizes an MPEG packetization of the type wellknown in the art for delivery over the RF channels. In this fashion, aparallel delivery mode to the normal broadcast delivery exists; i.e.,delivery of video content both over traditional downstream QAMs to thetuner of the user's STB or other receiver device for viewing on thetelevision, and also as packetized IP data over the DOCSIS QAMs to theuser's PC or other IP-enabled device via the user's cable modem.

Referring again to FIG. 1 c, the IP packets associated with Internetservices are received by edge switch 194, and forwarded to the cablemodem termination system (CMTS) 199. The CMTS examines the packets, andforwards packets intended for the local network to the edge switch 194.Other packets are discarded or routed to another component.

The edge switch 194 forwards the packets receive from the CMTS 199 tothe QAM modulator 189, which transmits the packets on one or morephysical (QAM-modulated RF) channels to the CPE. The IP packets aretypically transmitted on RF channels that are different that the RFchannels used for the broadcast video and audio programming, althoughthis is not a requirement. The CPE 106 are each configured to monitorthe particular assigned RF channel (such as via a port or socketID/address, or other such mechanism) for IP packets intended for thesubscriber premises/address that they serve.

Premises Gateway and Network

FIG. 2 a illustrates a common prior art premises network topology. Thecable headend 150 (FIG. 1 a) communicates with the customer premisesequipment (CPE) 106 by means of an intermediary HFC network 101 and hub204. The “last mile” connection to the customer's premises are typicallyvia coaxial cable 218, but in some instances, fiber optic cable replacescoaxial cable as in a fiber-to-the-home (FTTH) implementation. So-called“fiber-to-the-curb” or FTTC optical implementations may also be used.

The terminating coaxial cable 218 is routed into the customer premises106, and is connected to one or more set-top boxes 206 (e.g., DSTB)and/or one or more cable modems 212 (e.g., DOCSIS modem). Typically,program channel content is transmitted downstream from the cable headend150 or a BSA switching node over in-band frequencies, and internet(e.g., Internet) content is transmitted from the cable modem terminationsystem (CMTS) over DOCSIS frequencies.

A set-top box 206 receives analog signals from the network via thecoaxial cable, demodulates the analog signals, converts the demodulatedsignals into digital signals, and transmits the digital signals to adisplay device (e.g., television 210) or other apparatus. These signalsmay also be distributed via e.g., a back-end interface to DVRs, personalmedia devices (PMDs), and the like.

The cable modem 212 operates in a generally similar fashion. The cablemodem 212 receives analog signals from the network, demodulates theanalog signals, converts the demodulated signals into digital signals,and transmits the digital signals to a computerized device (e.g.,personal computer 216) or series of computers 216 a . . . 216 n in apremises local area network (LAN) 222.

As illustrated by FIG. 2 a, customer premises equipment (CPE) typicallycomprises the cable modem 212 and the set-top box 208 which are separatephysical units. Multiple units typically require more physical space, aswell as more wiring, in the customer's premises than a single,integrated device. For example, separate coaxial cable drops may berequired for in-band and DOCSIS delivery, as are separate power cordsand back-end interfaces. Additionally, the manufacture of separateset-top boxes and cable modems is more expensive than the manufacture asingle device incorporating the functionalities of both units.Compatibility issues (whether at a hardware or software level) may ariseif the devices are placed in communication with one another; theseissues are effectively obviated when a unified device is used, since thedevice hardware and software (including middleware) necessary to supportthe various functions are developed commonly, and utilize a commonoperating system.

FIG. 2 b is a block diagram illustrating an exemplary embodiment of apremises network topology according to the invention which utilizes suchan integrated device, herein referred to generally as a premisesservices gateway (PSG) 200, which can take many different forms asdescribed subsequently herein. As stated above, the PSG 200 can if soconfigured, be used to replace the separate cable modem 212 and theset-top box 208 of FIG. 2 a, providing the functionality of both units.Specifically, one exemplary embodiment of the PSG 200 is adapted toreceive channel content over in-band frequencies and internet contentover DOCSIS frequencies. This can be accomplished via, e.g., use of awideband tuner, use of multiple tuners, etc. For example, in oneembodiment, the PSG 200 comprises an RF front end including two tunersadapted to tune to prescribed in-band and DOCSIS QAMs respectively,delivered over the network 101. A wideband tuner arrangement such asthat described in co-owned and co-pending U.S. patent application Ser.No. 11/013,671 entitled “Method and Apparatus for Wideband Distributionof Content” filed Dec. 15, 2004 and incorporated herein by reference inits entirety, may also be utilized, such as where the content associatedwith one or more program streams (or DOCSIS data streams) is distributedacross two or more QAMs.

The PSG 200 then routes the received content (after any necessaryintervening processing) to the appropriate target device(s), such astelevision 210 and/or router 214. Data transmitted to a computer networkmay be handled by a conventional gateway or router 214 (as depicted byFIG. 2 b), switch, hub, proxy server, wireless base station, or othersuch similar device. The connection from the PSG to the router 214 inFIG. 2 b is typically via a standard Ethernet or CAT-5 cable 220 withRJ-45 or similar connector, although other approaches may be used. Theconnection from the gateway to the computers 216 a . . . 216 n may bevia CAT-5 cable 220 as shown in FIG. 2 b, via a wireless interface(e.g., WiFi, PAN, WiMAX, IrDA, etc.) if the router 214 and computers 216a . . . 216 n support a wireless transmission medium.

As yet another alternative, indigenous coaxial cable routed in thepremises (e.g., for delivery of the cable signal to various rooms in thehouse) may be used as a medium for delivery of the signals received viathe coaxial drop to the PSG 200; i.e., as a coaxial-based LAN.Specifically, in one variant, an IP-over-coax approach of the type wellknown in the networking arts is used to deliver digital data over theanalog coaxial cable throughout the premises. As described below withrespect to the embodiment of FIG. 3, the PSG 200 may also act as aunified communications (e.g., OOB) interface or proxy for othercomponents within the premises network or coupled thereto.

FIG. 3 is a block diagram of an exemplary network topology utilizing aPSG 200 according to the invention. In this embodiment, the cable modem212 comprises a discrete module of the PSG 200, communicating with thenetwork 101 using out-of-band (OOB)/Data services gateway (DSG)communication modes 300. The PSG 200 of FIG. 3 implements an out-of-banddata communication proxy for all system information to and from theheadend 150 (or other upstream node) for all content rendering devices.This approach obviates the requirement for OOB (e.g., DOCSIS or thelike) capability from all but one device at the premises (here, the PSG200). Hence, all OOB communications (upstream or downstream) from or tothe connected devices at the premises LAN can be routed through thePSG's proxy though a single unified interface if desired, althoughanother configuration (e.g., multiple coax drops may be utilized ifdesired; e.g., in conjunction with a MoCA architecture). The PSG 200communicates with a plurality of digital video recorder boxes 302 a . .. 302 n and at least one computer 216 over a premises local area network222 for such OOB traffic, as well as other signals. The computer 216 mayalso be configured to run an application (e.g., MSO-provided orauthorized application) to allow the subscriber to, inter alia,communicate with and configure various aspects of the PSG's operation.

Moreover, the configuration of FIG. 3 may be modified to include anetwork interface (e.g., coax cable drop) to the authorized servicedomain (ASD) or trusted domain (TD) plant for that LAN. See also thediscussion provided subsequently herein regarding trusted domains andother related security features.

Also as shown in FIG. 3, high-value content such as that distributed tothe illustrated DVRs can also be distributed to the PC 216.

The present invention can also be advantageously utilized to consolidatein-band tuner resources as well, thereby further reducing capital costsassociated with subscriber premises installations. For example, in onevariant, the in-band tuner(s) associated with a given device are“proxied” into the PSG 200 or another such device, thereby obviatinghaving each device maintain its own tuners.

FIG. 4 is a block diagram of another embodiment of the premises networkaccording to the invention, wherein the PSG 200 further integrates aconverged premises device (CD), such as that described in co-owned andco-pending U.S. patent application Ser. No. 11/378,129 entitled “Methodsand Apparatus for Centralized Content and Data Delivery” filed Mar. 16,2006, and incorporated herein by reference in its entirety. Theexemplary CD 400 comprises a remotely manageable premises device that,inter alia, acts as a centralized client networking platform providinggateway services such as network management as well as traditionalcontent and high-speed data delivery functions. The device also acts asthe shared internet (e.g., Internet) connection for all devices in thepremises via a cable modem or other such interface, sharing personal andDVR content such as video, music and photos (and any associatedmetadata) throughout the premises, and providing both a wired andwireless network in the home. Telephony services utilizing e.g.,embedded multimedia terminal adapter (eMTA) and/or Wi-Fi architecturesmay also be provided via the converged device 400; these services canmake use of the network operator's indigenous VoIP or comparabletelephony capability if desired, thereby providing an even more unifiedservice environment for the subscriber. For example, in one embodiment,the CD or PSG is configured with a Texas Instruments DSP-based Puma-4VoCable chipset (TNETC4700) that provides support for cellular codecs,low bit-rate codecs and advanced fax capabilities, although it will berecognized that any number of other devices and/or architectures may beused consistent with the invention to provide such functionality.

As previously noted, a wired home network utilizing existing coaxialcable in the premises may also be created, using e.g., anEthernet-to-coaxial bridge technology based on the MoCA specification.This allows existing devices and DVRs to connect and share content withthe CD 400, and also allows the network operator (e.g., MSO) to controland manage the premises coaxial network.

The exemplary CD 400 is also advantageously accessible via any remotedevice with internetworking (e.g., Internet) capability, therebyallowing personal content to be accessed by the user (or other entities)from outside the premises.

In the embodiment depicted by FIG. 4, downstream data (e.g., content,messaging, etc.) transmitted over in-band frequencies is sent from cableplant 101 (FIG. 1) to a digital video recorder (DVR) 302, set top box208, and CD 400 via a coaxial cable 218. Downstream data transmittedover out-of-band frequencies (e.g., DOCSIS channels) is routed first tothe CD 400 and then transmitted to the digital video recorder 302,set-top box 208, and computer(s) 216. Upstream data (e.g., messaging,content or data files, etc.) is transmitted from digital video recorder302, set-top box 208, or computer 216 to the CD 400 before beingtransmitted to the cable plant.

FIG. 5 is block diagram of another exemplary embodiment of the premisesnetwork topology according to the invention, wherein the PSG 200 isintegrated into a digital video recorder 302. In the embodiment depictedby FIG. 5, downstream data is transmitted over in-band frequencies fromthe network (not shown) to set-top box 208 and digital video recorder302 (part of the PSG 200) via coaxial cable 218. Downstream datatransmitted over out-of-band frequencies is routed first to the PSG 200and then transmitted to the computer 216 (e.g., PC, laptop, PMD, etc.).Upstream data is transmitted from set top box 208 or computer 216 to thePSG 200 before being transmitted to the cable plant via the HFC network101.

FIG. 6 is a block diagram of yet another embodiment of the premisesnetwork topology according to the invention, wherein the PSG 200 isadapted for use in an “all IP” premises network including, e.g., IP TV.The exemplary PSG 200 comprises a hard disk drive (HDD) 602 such as forexample one complying with the PATA (e.g., ATA-4/5/6), SATA, or SATA IIstandards, or other mass storage device that can be used, inter alia, tostore content delivered from the network 101 over the coaxial cable 218(or from other sources, such as connected devices within the premisesnetwork). The PSG 200 may communicate with one or more IP-enabled settop boxes 608 a . . . 608 n, and one or more personal computers 616 orPMDs. Communication between the set-top boxes 608 a . . . 608 n, andpersonal computer 616 and PSG 200 may be facilitated over wirelesschannels, CAT-5 cables, coaxial cables, or combinations thereof.

The exemplary PSG 200 further comprises apparatus to format datareceived from the network into data which can be transmitted over an IPnetwork and utilized by set-top boxes 608 and personal computers 616.Specifically, the embodiment of FIG. 6 includes an analog RF tuner,demodulation, and demultiplexing apparatus, and transcoder as required.As is well known, traditional video content is typically MPEG-basedvideo. Accordingly, this delivery mechanism (e.g., MPEG2 packet stream)may be encapsulated using an IP protocol, or alternatively recoded intoanother codec format (e.g., Real or Windows Media Player) and thenencapsulated using IP or a similar protocol.

Alternatively, the configuration of FIG. 6 also supports videotransported to the IP-based PC 616 (or IP-based DSTBs) over a DOCSISnetwork that is encoded in MPEG (or another video codec)-over-IP overMPEG. That is, the higher layer MPEG or other encoded content isencapsulated using an IP protocol, which then utilizes an MPEGpacketization for delivery over the RF channels used by a DOCSIS (orin-band) device.

Moreover, in one embodiment, the methods and apparatus described inco-owned and co-pending U.S. patent application Ser. No. 11/325,107filed Jan. 3, 2006 and entitled “METHODS AND APPARATUS FOR EFFICIENT IPMULTICASTING IN A CONTENT-BASED NETWORK”, incorporated herein byreference in its entirety, may be used consistent with the presentinvention to provide for efficient IP multicasting under inter alia, theforegoing scenario. Specifically, the foregoing disclosure providesmethods and apparatus directed to eliminating or reducing wastedbandwidth associated with multicasting packetized content (includingvideo or another such sizable transmission), and thereby increasing theoverall efficiency of the content-based network. In one embodiment, thesystem utilizes a “switched digital” approach to (i) deliver packetizedcontent only when requested, and (ii) selectively switch cable modems(CMs) or other such CPE to and from certain downstream channels (e.g.,DOCSIS QAM-modulated RF channels) based on switching algorithms. Thesealgorithms make use of the fact that in a typical “switched”environment, only a fraction of the available program channels areactually in use; hence, intelligent and timely switching of individualsubscribers (or groups of subscribers) can allow for a great reductionin the number of downstream channels that must be allocated to deliveryof the content. Moreover, in the DOCSIS environment, the subscriber'scable modems are switched selectively among different downstream QAMs insimilar fashion to the switched video previously described, therebyallowing for reduction in the total number of QAMs required to servicethe DOCSIS functionality (which may include both traditional IP-basednetwork services, as well as high-bandwidth video or “IP TV” content).Advantageously, these cable modems can be rapidly switched with nore-ranging or registration, thereby allowing for a substantiallyseamless and low-overhead switching transient which is transparent tothe user. Hence, the PSG 200 described herein (which incorporated CMfunctionality) can be configured for such algorithmic switching.

The foregoing approach is particularly useful in the context of IP orsimilar “multicast” content that is targeted for multiple subscribers byallowing this multicast content to be delivered to multiple subscribersby selectively tuning the subscribers to common channels where thecontent is already being delivered to other subscribers, therebyallowing for a 1:N expansion of the content with minimal if anyreplication.

It should be noted that the above-described embodiments of the premisesnetwork topology shown in FIGS. 2 b-6 are merely exemplary of thebroader principles of the invention; many other network configurationsand possible topologies can be realized in accordance with theinvention.

Security Policy Enforcement Variants

In another embodiment, the apparatus and methods described in co-pendingand co-owned U.S. patent application Ser. No. 11/592,054 filed Dec. 1,2006 and entitled “METHODS AND APPARATUS FOR PREMISES CONTENTDISTRIBUTION”, incorporated herein by reference in its entirety, may beused in conjunction with the PSG 200 (or CD 400) of the foregoingembodiments to, inter alia, enforce security policy. Specifically, theforegoing disclosure provides a mechanism for devices connected to apremises network to exchange information, and ultimately share ortransfer protected content (including for example audiovisual ormultimedia content, applications or data) in a substantially“peer-to-peer” fashion and without resort to a central security serveror other such entity. Authorized “browsing” of the content present onone device by another device is also provided. In one exemplaryembodiment, an application-level message exchange functionality allowsthe premises devices to advertise their security capabilities relatingto, e.g., protected content, and query other devices for their securitycapabilities. This query can be performed, for example, by identifyingsecurity frameworks or security packages that a device is capable ofhandling. These frameworks or packages become critical in, inter alia, aheterogeneous security environment. For example, implementations ofsecurity frameworks from different vendors can be markedly different,and may or may not interoperate, such as where two different vendors usethe same scrambling algorithms (e.g., Data Encryption Standard (DES),triple DES, AES, etc.) that cannot interoperate because the details oftheir key management are different.

Accordingly, the security architecture residing on two or more differentclient devices or domains can be reconciled and security information(and ultimately protected content) exchanged without resort to acentralized facility such as a cable headend process or entity. Forexample, in one embodiment, a “server” CPE (e.g., the PSG 200 or CD 400)and a “renderer” CPE (e.g., a DSTB or DVR) are disposed within apremises network as previously described. Message exchanges between thesever and renderer identify and validate each entity and its securitypackage or framework capabilities, as well as other capabilities thatmay be necessary to effect the exchange and use of the protectedcontent, data or application (e.g., the presence of an appropriatecodec, algorithm, network interface, etc.). These exchanges are alleffectively automatic and transparent to the user, thereby making devicelocation and identification, content/data/application exchange, andbrowsing seamless.

The message exchanges between the server and renderer CPE of theexemplary embodiment may follow the syntax and guidelines ofindustry-wide interoperability standards such as UPnP, and/or may bespecific to a premises networking standard (e.g., Multimedia over CableAlliance (MoCA) or Home Phone Line Network (HPNA) specifications, WiFi,Ethernet, and so forth). Moreover, this capability can be seamlesslyimplemented using existing security frameworks and constructs, such asthe Authorized Service Domain (ASD) framework previously referencedherein, thereby extending these frameworks with additional capabilitiesand services including local (e.g., premises network discovery,browsing, and content streaming or transfer). Security informationtransferred between entities may be passed via an existing in-band orOOB security protocol, or in another embodiment, requestingauthentication and passing in only a HostID or comparable data.

The PSG 200 or CD 400 can also provide a trusted or authorized servicedomain (ASD) for content or data, as well as allowing a subscriber totalmobility in the home by not limiting content or data to any oneviewing/access location. For example, content or data may be accessed onany monitor in the premises, as well as on a PC or personal media device(PMD). The PSG or CD can also instantiate a trusted domain (TD) withinthe premises “domain” or PD (such domain which may or may not beco-extensive with the premises itself) if one does not already exist.For example, using a downloadable CA (DCAS) approach, the necessarysoftware and firmware if any can be downloaded to the premises domain,thereby enabling designation of the premises domain as a trusted domainfor handling content. The PSG may also act as a unified conditionalaccess apparatus for purposes of a single premises account; i.e., anydevice “behind” the PSG in that premises could access content subject toDRM and any other CA/security rules. Exemplary methods and apparatus forestablishing a downloadable conditional access (DCAS), DRM, or TDenvironment within a device or domain of a content-based network aredescribed in co-owned and co-pending U.S. patent application Ser. No.11/584,208 filed Oct. 20, 2006 entitled “DOWNLOADABLE SECURITY ANDPROTECTION METHODS AND APPARATUS”, incorporated herein by reference inits entirety.

Exemplary trusted domain apparatus and methods are described in co-ownedand co-pending U.S. patent application Ser. No. 11/006,404 filed Dec. 7,2004 and entitled “TECHNIQUE FOR SECURELY COMMUNICATING AND STORINGPROGRAMMING MATERIAL IN A TRUSTED DOMAIN”, incorporated herein byreference in its entirety, although it will be recognized that otherapproaches may be used.

Personal Content Server (PCS) Variants

In yet another embodiment of the invention, the PSG 200 (and anyrequisite associated devices such as e.g., mass storage, depending onPSG configuration) may be utilized to act as a “personal” or localcontent server, whereby content may be stored locally within thepremises network. In one such embodiment, the PSG is equipped with DVRor comparable storage capability, and acts as the PCS for the localnetwork (i.e., that “behind” the PSG). An ASD or TD may also bemaintained for the LAN/PCS as previously described herein, such as viathe PSG incorporating a TD and secure microprocessor (SM) and associateddownloadable CA features of the type previously discussed.

In another embodiment, the PSG acts as the local PCS, acting as acommunications proxy/controller for a connected DVR-capable device.

The PSG of the present invention may also advantageously be configuredto act as a local or personal content aggregator; e.g., by presenting asingle or unified database, also located at the premises. As notedabove, this “unified database” may be indigenous to the PSG 200, such aswhere a variety of aggregated content such as movies, audio, data files,etc. are stored on a mass storage device or HDD of the PSG 200 itself.Alternatively, the PSG may act as a proxy or access/control point for aunified database stored on a local connected device (e.g., DVR, PC HDD,etc.). It will further be appreciated that the aforementioned unifieddatabase need not necessarily be physically unified; i.e., the actualstorage location for the content or data elements of the database mayphysically be distributed among two or more separate storage media, yetlogically unified so as to form a virtual unified database. As oneexample, the HDD of the PSG 200 may be used to contain audio content,the DVR connected to the PSG used to contain video content (e.g.,movies), and the HDD of the local PC used to contain data or other suchfiles. Each of these devices can be virtually unified by an applicationrunning on the PSG 200 (and client portions running on the respectiveDVR and PC if required) to present the user interfacing with the PSG,such as via an on-screen display or other GUI, with an aggregate listingof content within the premises network. Unified access to this contentmay also be provided via e.g., the aforementioned GUI, such as forexample where the user can select any given content or data element, andthe appropriate application software, codec, etc. is invoked to play orotherwise access the content.

In other embodiments of the PSG-based toplogy approach of the presentinvention, mechanisms for allowing access to content (e.g., programviewing) delivery over other networks or communication channels outsideof the parent content-based network may be used, such as those describedin co-owned and co-pending U.S. patent application Ser. No. 11/440,490filed May 24, 2006 entitled “PERSONAL CONTENT SERVER APPARATUS ANDMETHODS”, incorporated herein by reference in its entirety. For example,in the context of a cable television network, programming or othercontent delivered to a subscriber over the cable network can be accessedvia other (secondary) networks such as the Internet, LANs/WANs/MANs, awireless service provider (WSP) network, cellular service provider (CSP)network, or even a satellite network.

In one such embodiment, a personal content server located, e.g., at theheadend of the bearer (cable) network distributes content to the remoterequesting location(s), thereby eliminating repetitious traffic to andfrom subscriber's premises to fulfill the requests for remote contentdelivery.

In one variant, information relating to the requesting subscriber'sprior activity for the requested content is used as a basis forauthorizing delivery of the remote content. For example, the remotecontent manager may determine whether the requested program waspreviously stored on the subscriber's PSG 200 or DVR attached to thelocal (cable) network, such as via communication with the PSG 200 or CD400.

In another variant of the invention, when the subscriber wishing toaccess content (e.g., watch a program) from a location outside thebearer network does not have a DVR on his premises, the personal mediamanagement server communicates with either a “network DVR” or a “virtualDVR” maintained for the subscriber at the headend or other locationoutside of the subscriber premises in order to determine remote accessprivileges.

In yet another variant, activity or status of the tuner(s) within thelocal premises device (e.g., PSG 200 or CD 400) is used as the basis forcontrolling or determining delivery of the requested content to theremote location; e.g., the remote user can watch that channel to whichthe premises tuner is currently tuned.

The requested content advantageously may comprise video, audio, gamingcontent, software applications, stored data, or any other form of datawhich can be delivered over a network. On-demand content delivery(including trick mode and similar functions) is also optionallysupported through the establishment of a session between the remoteclient device and a VOD server within the cable headend and controlusing extant session and stream control protocols (e.g., LSCP).Broadcast or “live” content can also be accessed via this secondarynetwork approach.

Methods

FIG. 7 shows one exemplary embodiment of the method 700 of operating apremises network gateway according to the invention. First, the gatewaydevice (e.g., PSG 200 or CD 400 is established within the premises(network) per step 702. This may include transmitting and receiving(“negotiating”) network parameters, addresses, and other such operationsnecessary to enable the gateway device to act as a communication proxyfor the other devices connected on the premises network, such as theDSTB, DVR, and personal computer, to the headend or other upstreamnetwork node.

Next, the premises “LAN” is established per step 704. As used in thiscontext, the LAN may be as simple as one other connected orcommunicative device, or may be more complex (such as e.g., a MoCA-basedpremises LAN with multiple heterogeneous devices communicating therewith(and which may be in communication with other networks via e.g., agateway, access point or router).

The gateway device finally operates as a proxy for all OOB (e.g.,DOCSIS, etc.) signals from the cable network 101, and from the premisesLAN, per step 706. Specifically, the exemplary DOCSIS interface (e.g.,tuner) receives all downstream DOCSIS high-speed traffic destined fore.g., the PC, as well as all OOB signaling for the DVR, DSTB, and otherdevices. Similarly, the DOCSIS interface operates to transmit allupstream signaling from the premises LAN onto the network 101.

Referring now to FIGS. 8-10, exemplary methods of operation for aunified PSG device (i.e., one incorporating both in-band and OOBinterface capability within a single device) are described. While suchunified device may comprise separate in-band and OOB RF tuners aspreviously described, it may also comprise a unified or wideband tunerapparatus adapted to receive content from multiple QAMs substantiallysimultaneously.

As shown in FIG. 8, an RF signal is first received at the unified deviceper step 802. The received RF signal is typically a multiplexed analogsignal comprising: (i) data content adapted to be transmitted to acomputer for processing (e.g., IP-over-MPEG), and/or (ii) video content(e.g., MPEG2 encoded video or the like) adapted to be transmitted to adevice such as a television or stored on a DVR. The received signal isprocessed at step 810 to determine whether it contains video contentintended for a target device, and also at step 830 to determine whetherthe received signal contains data content intended for a target device.Note that steps 810 and 830 may not necessarily be performedsequentially as shown, and in fact may be performed in parallel oraccording to any number of other schemes. Moreover, these steps may beperformed after other processing described subsequently herein (e.g.,A/D conversion and demultiplexing).

In some embodiments, steps 810 and 830 are performed by one or moretuners, demultiplexer and demodulator stages comprised within a singledevice (e.g., PSG 200). For example, a cable tuner tuned to a specificprogram channel (and hence one or more QAMs) indicates that the video ormedia content corresponding to that program channel is the appropriatevideo content intended for a target television. Similarly, a DOCSIStuner by virtue of being tuned to DOCSIS QAM(s), presumes that datareceived over those channels is intended for data devices (such as aPC). Alternatively, the video and data components may be multiplexedinto the same transport stream(s), with e.g., the data in effect actingas just another MPEG-2 encoded program (albeit encapsulating the higherlayer IP protocol, and optionally a higher-layer coding such as MPEG orReal as previously described).

As another option, the PSG 200 may use a certain network address (e.g.,MAC, IP address, etc.) or network address filter to determine whetherdata content is intended for a connected computer or another device.This is particularly applicable to the “all IP” variants described withrespect to FIG. 6 herein.

If video content intended for a target device (e.g., DVR or televisionmonitor) is discovered, the appropriate video content is converted fromanalog to digital (e.g., using an ADC) per step 812, and thendemodulated (e.g., QAM demodulated for cable, or QPSK for satelliteapplications) per step 813. The digital demodulated content is thendemultiplexed if required at step 814. Other operations may also beperformed, such as forward error correction (e.g., Reed-Solomon,Viterbi, low density parity code (LDPC), or Turbo decoding) within theforegoing process.

In one embodiment, the video content is demodulated and demultiplexedfor only the currently tuned program channel(s). For example, if thereceived signal comprises program channel content for a broad range ofchannels 1-50, and the analog tuner is currently tuned to a frequencycorresponding to say program channel 34, then only the datacorresponding to program channel 34 is extracted from the multiplexedand modulated signal. In other embodiments, multiple program channelsare demodulated/demultiplexed and extracted from the signal aspreviously described. This latter approach is useful, for example, in adigital video recorder, where multiple program channels are to be viewedand recorded simultaneously via a multi-band or wideband tuner, or othersuch arrangement.

In most situations, the resulting demultiplexed and demodulated digitalsignal remains in an encoded format, as digital signals are oftenencoded by one or more video codecs and/or container formats at thecable headend or other network node before being transmitted as amultiplexed analog signal in step 802. For example, the digital signalmay have been encoded with an MPEG-2, Real, or Windows Media encodingscheme. At step 816, the digital signal is then accordingly decoded, andat step 818, the decoded signal is then transmitted to a connectedtelevision for display. The method then repeats from step 802. Anappropriate digital video encoding (DVE) process may also be appliedbefore transmission to the television or other display device for, e.g.NTSC/PAL, or RGB, or YCbCr conversion and synchronization, as is wellknown in the art.

Data content is handled in a generally similar fashion. If data contentintended for a target device (e.g., PC) is present, the appropriate datacontent is A/D-converted after receipt from the tuner/coaxial drop (step832), demodulated (e.g., 64- or 256-QAM or the like for cable, and QPSKfor most satellite applications) per step 833, and demultiplexed fromthe QAM at step 834 if required. As stated above, some embodimentsutilize a DOCSIS tuner to receive data content intended for networkdevices such as PCs or other computerized apparatus, thereby obviatingdetermination of the type of content received per step 830 (i.e., it ispresumed to be data content if received over the DOCSIS QAMs).

The signal is then transmitted to a connected computer or other device(e.g., router) for processing at step 838. Such computer-basedprocessing might comprise, for example, compression or coding thedecoded content into another format, storage, etc. The process thenrepeats from step 802.

In one variant, network address translation (NAT) is also performed(translating the source and/or destination addresses of the datacontent) as required to effect delivery within the premises network. NATmay also be used to allow each of the PCs or other nodes in the premisesnetwork to have unique addresses. This prevents multiplication of IP orother network addresses for the premises, which can be expensive for thesubscriber.

In another embodiment, the dynamic host control protocol (DHCP) is usedfor network addressing by the devices on the premises LAN. As is wellknown, DHCP a protocol used to obtain IP addresses and other parameterssuch as the default gateway and subnet mask of DNS or other servers,typically from a designated DHCP server.

FIG. 8 a illustrates a variant of the method illustrated by FIG. 8.Generally speaking, the key difference in this embodiment is that videocontent may be transmitted to both a target television and a targetcomputer or other computerized device. This enables, inter alia, cabletelevision channels to be streamed to a computerized or other device anddisplayed on a connected viewing device, such as an LCD monitor. Thus,after the digital signal is decoded in step 816, it is routed both to atelevision and a computerized device for appropriate processing. Forexample, this decoding might comprise MPEG-2 decoding, at which pointthe MPEG-over-IP encoded packets previously described are forwarded tothe computer.

FIG. 9 illustrates another variant of the method illustrated by FIG. 8.Here, the digital signal is encoded into a format appropriate fordisplay on a computer monitor before being transmitted to the computer.This occurs at step 920. The computer receiving the encoded digitalsignal is adapted to handle the encoding scheme accordingly.

FIG. 10 illustrates another variant of the method illustrated by FIG. 8.This variant is similar to the variant shown by FIG. 8 a, except thatthe video content is transmitted to a target computer in its originalencoded format (i.e., before being decoded at step 1016). Thus, thisvariant allows for some of work normally performed by a device such as aPSG 200 to be performed by a computer, provided that the computer hasthe appropriate codec necessary to decode the transmitted digital signal(and recode it into an appropriate format for display or distribution).This may be, for example, an MPEG-2 or DVB codec.

It should be noted that the above examples are merely exemplary; manyother methods and permutations of methods may be realized in accordancewith the present invention and consistent within its scope.

Premises Services Gateway Apparatus

Referring now to FIGS. 11-15, various exemplary configurations of thePSG 200 useful with the topologies shown in FIGS. 2 b-6 herein aredescribed in greater detail.

As shown in FIG. 11, a first configuration of PSG 200 comprises asubstantially unified device having a coaxial cable interface 218 thatis coupled to a DOCSIS tuner 1126. The analog RF signals received overthe DOCSIS tuner are A/D converted (ADC 1122), and the digital signalsdemodulated (e.g., QAM-256 demodulated) using a demodulator 1102, afterwhich the demodulated signals are demultiplexed 1104. An optionaltranscryption module 1108 adapted to perform security domaintranscryption of the type previously described herein is alsoillustrated in FIG. 11.

A DOCSIS media access controller (MAC) 1115 is used to extract the datafor routing over the high-speed network interface 1112, such as to apersonal computer (PC). The interface 1112 might comprise, for example,a coaxial cable interface, an Ethernet/GBE interface with RJ-45/CAT-5, aFirewire (IEEE-1394) interface, USB interface, a wireless interface(e.g., WiFi, UWB PAN, etc.), or other.

Upstream DOCSIS signals are sent from the MAC 1115 to the QAM modulator1102, and then D/A converted 1120, amplified, and sent upstream on anappropriate QAM.

The PSG 200 is also comprised of a DVR interface 1110, which receivesOOB signals (dotted lines) from the DVR, and likewise transmitsdownstream OOB signaling to the DVR. The DVR interface 1110 is in OOBsignal communication with the DOCSIS MAC 1115, and is controlled atleast in part by the digital processor 1106.

The PSG 200 also includes a DSTB interface 1118, which like the DVRinterface 1110, is controlled by the processor 1106, and interfaces OOBsignals with the DOCSIS MAC 1115 and an external DSTB.

Hence, in the embodiment of FIG. 11, the PSG 200 acts as an OOB proxyfor external DVR and DSTB assets, which each have their own coaxial“in-band” interface (not shown) for delivery of in-band content. Thisobviates the OOB tuner on each device, thereby allowing them to besimpler and manufactured more inexpensively. In one variant,communication between the various entities (e.g., DVR and DSTB and PSGOOB proxy) is accomplished using IP-based communications of the typewell known in the art, although other approaches may be used with equalsuccess.

As noted above, the PSG 200 may also be used to distribute SystemInformation (SI), a type of packet used in a MPEG-2 or Digital VideoBroadcast (DVB) streams.

In one embodiment, network interface 1112 acts as a switch or router,and directs data content based on destination IP address headers. Forexample, the PSG 200 may comprise a plurality of Ethernet ports, oneport comprising a connection to a network card located in a firstcomputer, and a second port comprising a connection to a network cardlocated in a second computer. In this variant, a unique IP address isassigned per each network card. Thus, when the interface 1112 reads apacket header indicating the destination IP address of the first orsecond network card, it routes the data accordingly.

In a second embodiment, the interface 1112 acts as a router comprising anetwork address translation module and a Dynamic Host ConfigurationProtocol (DHCP) Server (not shown). The DHCP Server maintains a list ofaddresses available to assign to networked clients, and assigns theseaddresses accordingly. The DHCP Server ensures that all IP addresses areunique, that is, that no IP address is assigned to a second client whilethe first client's assignment is valid. The Network Address Translationmodule (NAT) is adapted to re-write the source and/or destinationaddresses of IP packets as they are received from either the networkeddevices (for packets transmitted upstream) or the data services gateway(for packets transmitted downstream). In some variants, the NAT replacesany assigned network address with the IP address of the interface 1112as the source IP address for data packets transmitted upstream. The NATlikewise replaces the IP address of the interface 1112 with theappropriate assigned network address as the destination IP address fordata transmitted downstream.

FIG. 12 shows an alternate configuration of the PSG 200, wherein the PSGincludes both a DOCSIS tuner 1126 and an in-band (e.g., video) tuner1124. The video tuner 1124 may comprise for example a standard 50-850MHz “all-digital” tuner to receive broadcast services, although otherconfigurations may be used. The operation of the DOCSIS portion of thedevice is substantially similar to that previously described for FIG.11, yet the PSG further includes a video processing pathway (left sideof FIG. 12), wherein video signals are demodulated 1103, demultiplexed1105, transcrypted 1108, decoded 1107 as needed, and then recorded to anindigenous DVR function 302 and associated mass storage device 1116.Video that is to be transmitted outside the gateway 200 is optionallyvideo encoded via the encoder 1109, and then sent to a monitor, etc. viathe video interface 1118 as shown.

The DVR 302 uses the OOB functions of the PSG 200 as a proxy (i.e.,instead of its own OOB interface), as previously described.

Per FIG. 13, yet another embodiment is illustrated, wherein a unified orwideband tuner arrangement 1124 of the type previously referenced hereinis used. Here, both downstream in-band (e.g., video) and DOCSIS contentare received via the unified tuner 1124, and then demodulated anddemultiplexed (and optionally transcrypted 1108) as shown. Thedemultiplexed/transcrypted video is then decoded, and distributed toe.g., a video encoder 1109 as previously described with respect to FIG.12. The demuxed DOCSIS data is sent to the DOCSIS MAC 1115, anddistributed as previously described (e.g., to a PC or the like) withrespect to FIG. 11. A resident mass storage device 1116 (e.g., HDD) isprovided in this configuration for e.g., storage of video content,although this is not a requirement.

In the configuration of FIG. 14, the PSG 200 is equipped similarly tothe device of FIG. 12, with the exception that an indigenous DSTBfunction 1130 is provided which uses the PSG's DOCSIS interface as aproxy, as previously described (as does the DVR 302). The DSTB functions1130 in effect subsume normal DSTB functionality within the PSG, therebyobviating the DSTB altogether. In this fashion, a fully integrated andunified device is present, having one (1) DOCSIS tuner, two (2) or morevideo or in-band tuners (i.e., to support DVR recording capability andsimultaneous viewing of in-band content), one (1) cable drop 218 (toservice the DVR, DSTB/in-band viewing, and DOCSIS HSD functionscollectively), and hence acts as a DVR, DSTB, and cable modem all inone.

FIG. 15 illustrates yet another possible configuration of the PSG 200,wherein while generally similar to the device of FIG. 12, a video IP MAC1127 is provided, as is an IP STB interface 1128. This “all IP” variantallows servicing of DOCSIS IP and video IP (e.g., “IP TV”) functions ina unified fashion, while still maintaining a unified OOB proxy function.

As previously discussed, the PSG 200 may also act as part of a trusteddomain (TD) or authorized service domain (TD), and support downloadableconditional access (e.g., DCAS), digital rights management (DRM), andsimilar functional models. For example, in one variant, the PSG 200comprises a secure microprocessor (SM), not shown and negotiates with apersonalization server (PS) and other network infrastructure in order toobtain a common and personalized software image as would a conventionaldownload-enabled STB.

Moreover, the PSG 200 can be configured to use one or more identifyingparameters (e.g., MAC address, TUNER_ID, TUNER_USE, or the like) as thebasis for an anonymous identification of the PSG 200 (or even devices onthe premises LAN with which the PSG 200 is associated. For example, inone variant, a so called “opaque” variable formed using a one-waycryptographic hash of the aforementioned parameters (or portionsthereof), such as that described in co-owned and co-pending U.S. patentapplication Ser. No. 11/186,452 filed Jul. 20, 2005 and entitled “METHODAND APPARATUS FOR BOUNDARY-BASED NETWORK OPERATION”, incorporated hereinby reference in its entirety, is used to uniquely but anonymouslyidentify the PSG 200. Since a DOCSIS MAC is used as the proxy for allother devices (e.g., DVR, STB, etc.), only one opaque variable can begenerated if desired, somewhat akin to a single IP address for the IPMAC of the device (with NAT for the LAN-connected premises devicesbehind the PSG). However, other embodiments where each device (even whenintegrated into a unified configuration) has its own unique anonymousidentifier are also contemplated under the present invention.

The PSG 200 of the present invention may also utilize the contentevaluation and peer sourcing technologies described in co-owned andco-pending U.S. patent application Ser. No. 11/726,095 filed Mar. 20,2007, entitled “METHODS AND APPARATUS FOR CONTENT DELIVERY ANDREPLACEMENT IN A NETWORK”, incorporated herein by reference in itsentirety. For example, in one such embodiment, the PSG 200 can act as asource or sink peer within a network, so as to inter alia permitbandwidth consumption to be pushed out to the edge of the network (andaway from the core). The DVR function 302 of the embodiment of FIG. 12herein, for instance, might include a client process adapted to evaluatedownloaded and stored content, and transparently request defective orcorrupted portions of this content from peer devices on the network thathave the requisite content.

In yet other variants, the PSG 200 of the present invention may includetranscoding, transcrypting, or transrating functionality. Essentially, atranscoder receives a signal encoded in one format, translates thesignal into a signal encoded in another format, and transmits or storesthe translated signal. This is useful because a variety of standards andcompression schemes are currently being employed to encode remotecontent. Thus, transcoder can be used, inter alia, for convertingunreadable content into a readable format for a given client device. Forexample, this allows the PSG 200 to translate video content encoded in aformat appropriate for television viewing into a format which can beread and processed by a client computer, and vice versa.

The exemplary transcrypter module (not shown) provides translation ofsecurity data or protection mechanisms between different environments ordomains (e.g., between a conditional access domain resident on the cabletelevision network), and a Digital Rights Management (DRM) schemeresident on e.g., an IP-based computer resident on the premises LANconnected to the PSG 200. In this fashion, content or other data withinthe cable environment can “jump the fence” to DRM or other securityenvironments that may be more widely deployed on IP-based devices forexample. This is particularly useful for the “all IP” embodimentspreviously described herein with respect to FIGS. 6 and 15.

Business Models

In another aspect of the invention, the aforementioned apparatus andmethods can be used as the basis for one or more business models.

As previously discussed, various embodiments of the inventionadvantageously reduce capital costs associated with CPE andinfrastructure, such as by eliminating costs associated with tuners forthese devices (e.g., on the order of $20 USD per cable modem, and$10-$40 USD per tuner). The invention may also be used to obviatemultiple CableCards or other conditional access mechanisms within agiven premises, which not only saves costs but also allows for a moreunified CA implementation.

For example, in one embodiment, the network operator (e.g., MSO of acable network) can use the OOB proxy capabilities described herein as abasis for reducing the cost of deploying CPE within the subscriber'spremises. Instead of providing a DVR or STB with both video and OOBtuners and processing, the MSO might provide the subscriber with a PSGwhich obviates the need for separate OOB tuning and support in the DVRand/or STB. This also potentially simplifies communicationinfrastructure at the headend, since the headend OOB communicationsprocess need only interface with a single communication entity (i.e.,the OOB apparatus in the PSG, which acts as a proxy for the otherdevices).

In another variant, the MSO provides the subscriber with a unified orconverged device 400 of the type previously described. The CD includesindigenous high speed data (e.g., DOCSIS cable modem) capability, andhence can act as an OOB proxy in all cases. This allows the MSO (or thesubscriber) to provide STB and DVR devices that do not have OOB tunersand supporting components, and hence cost less. The distribution of theCD may be done to all subscribers (e.g., whether they have subscribedfor high speed data services or not) so as to simplify stocking,delivery installation, and configuration processes by the MSO (“one sizefits all” approach of sorts), or alternatively in a more selectivefashion; e.g., to only subscribers that need high speed data capability.

As another option, the MSO or another entity can selling or provideservices that are licensed on a per-dwelling or per-unit basis, somewhatakin to prior art software “site” licensing approaches. Such an approachis also advantageously expandable, such as more DVRs, PCs, STBs, etc.are added to a particular premises or installation.

In another variant, an embedded multimedia terminal adapter (eMTA) ofthe type previously described herein is included within the PSG 200 orCD for inter alia digital telephony functions, thereby further reducingand consolidating capital costs. Embedded multimedia terminal adapters(eMTAs) offer significant revenue opportunities for MSOs by combiningdelivery of high-speed data with VoIP services by connecting legacytelephony and terminal equipment (such as a fax machine) to an MSO's IPnetwork. Traditional telephone functions such as call waiting, 3-waycalling, voice mail and fax are supported.

In yet another embodiment, the PSG 200 can be used to host or receiveservice or other applications. For example, an application with aparticular service or maintenance functionality can be downloaded topthe PSG (or a designated proxy device, such as the aforementioned PC)and run as needed to provide the necessary functions. This applicationcan then stay resident (dormant) on the PSG or PC, be destroyed uponcompletion of its function, and so forth. The application might be usedfor example to collect polling or sample data from one or more deviceswithin the premises network, monitor PSG functions, initiatecommunications with other devices (e.g., as a local communications proxyaccording to a prescribed communications or data transfer protocol),etc.

Similarly, the PSG 200 or a designated proxy thereof can be used as a“Point of Presence” (PoP) for the network operator; e.g., a chat, text,audio, etc. interactive user interface, which allows for real-timeinteractive communication between the operator (e.g., MSO) and the user.Such functionality may be useful, for example, where the user requires“on line” or real time help with finding or activating a service,troubleshooting, subscription package changes, movie downloads, and thelike.

The PSG 200 may also be used as part of a peer-to-peer (P2P) networkfor, inter alia, content sharing or replacement, such as that describedin co-pending and co-owned U.S. patent application Ser. No. 11/726,095filed Mar. 20, 2007 previously incorporated herein by reference in itsentirety. Other P2P approaches may be used as well consistent with theaim of having the PSG or a designated proxy communicate with other CPEon the network.

It will be recognized that while certain aspects of the invention aredescribed in terms of a specific sequence of steps of a method, thesedescriptions are only illustrative of the broader methods of theinvention, and may be modified as required by the particularapplication. Certain steps may be rendered unnecessary or optional undercertain circumstances. Additionally, certain steps or functionality maybe added to the disclosed embodiments, or the order of performance oftwo or more steps permuted. All such variations are considered to beencompassed within the invention disclosed and claimed herein.

While the above detailed description has shown, described, and pointedout novel features of the invention as applied to various embodiments,it will be understood that various omissions, substitutions, and changesin the form and details of the device or process illustrated may be madeby those skilled in the art without departing from the invention. Theforegoing description is of the best mode presently contemplated ofcarrying out the invention. This description is in no way meant to belimiting, but rather should be taken as illustrative of the generalprinciples of the invention. The scope of the invention should bedetermined with reference to the claims.

1. A premises gateway device for use in a content-based network,comprising: first apparatus adapted to receive first signals transmittedover a first frequency band via said network; second apparatus adaptedto receive second signals transmitted over a second frequency band viasaid network, and transmit third signals over said second band also viasaid network; and an interface to another premises device; wherein saidanother premises device utilizes said second apparatus as acommunications proxy for transmitting said third signals via said secondband that it would otherwise have to transmit via a separate interfaceto said network.
 2. The gateway device of claim 1, wherein the gatewaydevice further comprises a converged premises device having a cable LANinterface and an Ethernet LAN interface.
 3. The gateway device of claim1, wherein the gateway device further comprises a digital videorecorder, and said another device comprises a set-top box (STB).
 4. Thegateway device of claim 1, wherein said first signals comprise in-banddownstream signals received over a coaxial cable, and said secondsignals comprise downstream data signals also received over said coaxialcable, and said third signals comprise out-of-band upstream signals. 5.The gateway device of claim 4, wherein the gateway device furthercomprises a digital video recorder, and said another device comprises aset-top box (STB).
 6. The gateway device of claim 4, wherein said secondapparatus comprises a DOCSIS-compliant cable modem having at least ademodulator.
 7. The gateway device of claim 1, wherein said anotherpremises device comprises a set-top box having only an in-band tuner,and not capable of communicating over said second frequency banddirectly.
 8. The gateway device of claim 1, further comprising a trusteddomain (TD) adapted to maintain at least one security policy within saidpremises gateway device and one or more other premises devices in datacommunication with said gateway device.
 9. The gateway device of claim1, further comprising a secure microprocessor (SM) adapted to obtainboth a common and personalized software image for use with a conditionalaccess system.
 10. A gateway device for use in a content-based network,comprising: first apparatus adapted to receive first signals transmittedover a first frequency band via said network, and transmit secondsignals over said first band also via said network; a first datainterface to a first premises device; and a second data interface to asecond premises device; wherein said first frequency band comprises aband used for either out-of-band (OOB) signaling or cable modemoperation; and wherein said first and second premises devices eachutilize said first apparatus as a communications proxy for transmittingsaid second signals.
 11. The gateway device of claim 10, wherein saidcontent-based network comprises a cable network, and said first premisesdevice comprises a set-top box (STB), and said second device comprises adigital video recorder (DVR).
 12. The gateway device of claim 1IP-over1, wherein said STB and said DVR comprise only in-band tuners.
 13. Thegateway device of claim 10, wherein said first apparatus comprises aDOCSIS compliant cable modem.
 14. The gateway device of claim 10,wherein said first and second premises devices each communicate withsaid first apparatus using an internet protocol (IP).
 15. The gatewaydevice of claim 14, wherein said first apparatus comprises a DOCSIScompliant cable modem with media access controller (MAC).
 16. Thegateway device of claim 10, wherein said first premises device comprisesa personal computer, and said first interface comprises an Ethernetcard.
 17. The gateway device of claim 10, wherein at least one of saidfirst and second interfaces comprises a coaxial cable interface to aMoCA-compliant local area network (LAN).
 18. The gateway device of claim10, wherein said gateway device comprises network address translation(NAT) capability.
 19. The gateway device of claim 10, wherein saidgateway device comprises a Dynamic Host Configuration Protocol (DHCP)server.
 20. The gateway device of claim 10, wherein said gateway devicecomprises a codec adapted to encode a signal.
 21. The gateway device ofclaim 10, wherein said gateway device comprises a transcoder apparatusadapted to encode a signal encoded according to a first format into asecond format different from the first.
 22. The gateway device of claim10, wherein said first and second premises devices comprise IP-enableddevices, and said gateway device is adapted to communicate IP protocoldata with said first and second premises devices via said first andsecond interfaces.
 23. The gateway device of claim 22, wherein saidgateway device comprises a transcryption apparatus adapted to transcryptdata from a first security environment to a second security environment.24. The gateway device of claim 23, wherein said first securityenvironment comprises a conditional access environment, and said secondsecurity environment comprises a digital rights management environment.25. Set-top box apparatus, comprising: first apparatus adapted toreceive, demodulate, and decode encoded video signals sent via a cabletelevision network; and second apparatus configured to communicate dataor signals with a premises device via a communication channel, saidpremises device being adapted to provide out-of-band (OOB) communicationwith one or more other entities on said cable television network basedat least in part on said data or signals; wherein said premises deviceacts as an OOB communication proxy for said set-top box apparatus. 26.The set-top box apparatus of claim 25, wherein said first apparatuscomprises an in-band tuner, and said second apparatus comprises an OOBsignaling interface.
 27. The set-top box apparatus of claim 25, whereinsaid first apparatus comprises an in-band tuner, and said secondapparatus comprises an IP-based media access controller (MAC).
 28. Theset-top box apparatus of claim 25, wherein said premises devicecomprises an out-of-band tuner.
 29. Digital video recorder apparatus,comprising: first apparatus adapted to receive, demodulate, and decodeencoded video signals sent via a cable television network; secondapparatus adapted to record said decoded video signals for subsequentplayback or transmission; and third apparatus configured to communicatedata or signals with a premises device via a communication channel, saidpremises device being adapted to provide out-of-band (OOB) communicationwith one or more other entities on said cable television network basedat least in part on said data or signals; wherein said premises deviceacts as an OOB communication proxy for said digital video recorderapparatus.
 30. The digital video recorder apparatus of claim 29, whereinsaid first apparatus comprises an in-band tuner, and said thirdapparatus comprises an OOB signaling interface.
 31. The digital videorecorder apparatus of claim 29, wherein said first apparatus comprisesan in-band tuner, and said third apparatus comprises an IP-based mediaaccess controller (MAC).
 32. The digital video recorder apparatus ofclaim 29, wherein said premises device comprises an out-of-band tuner.33. The digital video recorder apparatus of claim 32, wherein saidsecond apparatus comprises a hard-disk drive, and said recorderapparatus enforces at least one of a trusted domain (TD) or authorizedservice domain (ASD) content protection policy.
 34. The digital videorecorder apparatus of claim 29, wherein said premises device and saiddigital video recorder comprise a unified form factor.
 35. The digitalvideo recorder apparatus of claim 29, wherein said premises devicefurther comprises a video interface to a monitor or set-top box.
 36. Thedigital video recorder apparatus of claim 29, wherein said premisesdevice further comprises an interface to a set-top box having only anin-band tuner, said premises device acting as an OOB communication proxyfor said set-top box.
 37. Premises gateway apparatus for use with acontent-based network, the apparatus comprising: a first tuner adaptedto receive first signals in a first frequency band from said network,and obtain first data from said first signals; a second tuner adapted toreceive second signals in a second frequency band from said network, andobtain second data from said second signals; a first interface adaptedto format said first data according to a protocol, and distribute saidformatted data to at least one first premises device in datacommunication with said gateway apparatus; and a second interfaceadapted to at least distribute said second data to at least one secondpremises device in data communication with said gateway apparatus. 38.The gateway apparatus of claim 37, wherein said network comprises acable television network, and said first signals are delivered over saidnetwork associated with in-band QAMs.
 39. The gateway apparatus of claim38, wherein said second signals are delivered over said networkassociated with out-of-band QAMs.
 40. The gateway apparatus of claim 39,wherein said first interface is adapted to format data packets receivedvia said in-band QAMs according to an internet protocol (IP).
 41. Thegateway apparatus of claim 40, wherein said second interface comprises aTCP transport layer protocol and an IP network layer protocol, and saidat least one second premises device comprises a personal computer. 42.The gateway apparatus of claim 40, wherein said at least one firstpremises device comprises an IP-enabled digital set-top box.
 43. Thegateway apparatus of claim 42, wherein said second tuner apparatus isfurther adapted to transmit signals in said second frequency band oversaid network to a distant entity.
 44. The gateway apparatus of claim 43,wherein said transmitted signals comprise signals originated from saiddigital set-top box.
 45. A method of delivering video and data servicesover a cable network, comprising: receiving video and data signals at agateway device from a common coaxial cable; using at least a first tunerto extract said video signals; using at least a second tuner to extractsaid data signals; processing said video signals according to a networklayer protocol to produce a plurality of protocol packets; anddelivering said protocol packets to a packet-enabled client device forviewing, said packet-enabled device being in data communication withsaid gateway device.
 46. The method of claim 45, further comprisingdelivering said data signals to a computerized device in datacommunication with said gateway device.
 47. The method of claim 45,wherein said network layer protocol comprises the Internet Protocol(IP).
 48. The method of claim 45, wherein said video signals compriseMPEG-over-IP-over MPEG encoded signals.
 49. A method of delivering videoservices over a network, comprising: receiving video signals at a firstdevice using a first network interface apparatus; receiving data signalsat a second device using a second network interface apparatus, saidfirst and second devices being in data communication with one another;and sending upstream signals destined for a network entity from saidfirst device via said second network interface apparatus of said seconddevice.
 50. The method of claim 49, wherein said first device comprisesa set-top box or digital video recorder (DVR), and said second devicecomprises a premises gateway device.
 51. The method of claim 49, whereinsaid network comprises a cable network, said first device comprises aset-top box or digital video recorder (DVR), and said second networkinterface apparatus comprises a cable modem.
 52. The method of claim 51,further comprising receiving, via said second network interfaceapparatus of said second device, downstream signals from a networkentity, said signals destined for said first device.
 53. The method ofclaim 49, wherein said first device and said second device comprise atrusted security domain, and said method further comprises enforcing atleast one security policy with respect to at least said video signalswithin said domain.
 54. The method of claim 49, wherein at least one ofsaid first device and said second device comprise a securemicroprocessor, and said method further comprises downloading at least acommon image and a personalized software image to said securemicroprocessor pursuant to establishing a conditional access privilege.55. A method of doing business, comprising: providing a premises gatewaydevice having at least an out-of-band (OOB) network interface to asubscriber; providing a video rendering or recording device to saidsubscriber, said rendering or recording device having no out-of-bandnetwork interface; and causing said subscriber to use said at least OOBinterface of said gateway device for OOB communications between saidrendering or recording device and said network.